
<!DOCTYPE html>
<html lang="zh-CN">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>全方位真实渗透测试报告 - 101.37.80.173</title>
    <style>
        body { font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif; margin: 0; padding: 20px; background: #f5f5f5; }
        .container { max-width: 1200px; margin: 0 auto; background: white; border-radius: 10px; box-shadow: 0 0 20px rgba(0,0,0,0.1); }
        .header { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); color: white; padding: 30px; border-radius: 10px 10px 0 0; }
        .header h1 { margin: 0; font-size: 2.5em; }
        .header p { margin: 10px 0 0 0; opacity: 0.9; }
        .content { padding: 30px; }
        .section { margin-bottom: 30px; }
        .section h2 { color: #333; border-bottom: 3px solid #667eea; padding-bottom: 10px; }
        .test-item { background: #f8f9fa; border-left: 4px solid #28a745; padding: 15px; margin: 10px 0; border-radius: 5px; }
        .test-item.failed { border-left-color: #dc3545; }
        .test-item.warning { border-left-color: #ffc107; }
        .status { font-weight: bold; padding: 5px 10px; border-radius: 20px; color: white; }
        .status.success { background: #28a745; }
        .status.failed { background: #dc3545; }
        .status.warning { background: #ffc107; color: #333; }
        .command { background: #2d3748; color: #e2e8f0; padding: 10px; border-radius: 5px; font-family: monospace; margin: 10px 0; }
        .output { background: #1a202c; color: #a0aec0; padding: 10px; border-radius: 5px; font-family: monospace; margin: 10px 0; max-height: 200px; overflow-y: auto; }
        .summary { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); color: white; padding: 20px; border-radius: 10px; }
        .grid { display: grid; grid-template-columns: repeat(auto-fit, minmax(300px, 1fr)); gap: 20px; }
        .card { background: white; border-radius: 10px; padding: 20px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
        .metric { text-align: center; }
        .metric-value { font-size: 2em; font-weight: bold; color: #667eea; }
        .metric-label { color: #666; margin-top: 5px; }
    </style>
</head>
<body>
    <div class="container">
        <div class="header">
            <h1>🎯 全方位真实渗透测试报告</h1>
            <p>目标服务器: 101.37.80.173 | 测试时间: 2025-10-13T00:39:27.003780</p>
        </div>
        
        <div class="content">
            <div class="section">
                <h2>📊 测试概览</h2>
                <div class="summary">
                    <div class="grid">
                        <div class="metric">
                            <div class="metric-value">5</div>
                            <div class="metric-label">后门部署成功</div>
                        </div>
                        <div class="metric">
                            <div class="metric-value">3</div>
                            <div class="metric-label">EDR规避测试</div>
                        </div>
                        <div class="metric">
                            <div class="metric-value">3</div>
                            <div class="metric-label">数据渗透测试</div>
                        </div>
                        <div class="metric">
                            <div class="metric-value">3</div>
                            <div class="metric-label">隐蔽通信测试</div>
                        </div>
                    </div>
                </div>
            </div>
            
            <div class="section">
                <h2>🔗 连接测试</h2>
                
            <div class="test-item ">
                <strong>target_server:</strong> 101.37.80.173
                <span class="status success">成功</span>
                <p>详细信息: 连接成功</p>
                <p>时间: 2025-10-13T00:39:27.215609</p>
            </div>
            
            <div class="test-item ">
                <strong>control_server:</strong> 140.150.236.199
                <span class="status success">成功</span>
                <p>详细信息: 连接成功</p>
                <p>时间: 2025-10-13T00:39:29.014596</p>
            </div>
            
            </div>
            
            <div class="section">
                <h2>💻 系统信息</h2>
                
            <div class="test-item">
                <strong>hostname:</strong>
                <div class="command">$ hostname</div>
                <div class="output">hello
</div>
            </div>
            
            <div class="test-item">
                <strong>kernel:</strong>
                <div class="command">$ uname -a</div>
                <div class="output">Linux hello 5.4.0-216-generic #236-Ubuntu SMP Fri Apr 11 19:53:21 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
</div>
            </div>
            
            <div class="test-item">
                <strong>os_release:</strong>
                <div class="command">$ cat /etc/os-release 2>/dev/null || cat /etc/redhat-release 2>/dev/null || echo 'Unknown'</div>
                <div class="output">NAME="Ubuntu"
VERSION="20.04.6 LTS (Focal Fossa)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 20.04.6 LTS"
VERSION_ID="20.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=focal
UBUNTU_CODENAME=focal
</div>
            </div>
            
            <div class="test-item">
                <strong>cpu_info:</strong>
                <div class="command">$ cat /proc/cpuinfo | grep 'model name' | head -1</div>
                <div class="output">model name	: Intel(R) Xeon(R) Platinum
</div>
            </div>
            
            <div class="test-item">
                <strong>memory_info:</strong>
                <div class="command">$ free -h</div>
                <div class="output">              total        used        free      shared  buff/cache   available
Mem:          3.7Gi       130Mi       3.1Gi       2.0Mi       417Mi       3.3Gi
Swap:            0B          0B          0B
</div>
            </div>
            
            <div class="test-item">
                <strong>disk_info:</strong>
                <div class="command">$ df -h</div>
                <div class="output">Filesystem      Size  Used Avail Use% Mounted on
udev            1.9G     0  1.9G   0% /dev
tmpfs           376M  712K  376M   1% /run
/dev/vda3        40G  3.0G   35G   8% /
tmpfs           1.9G     0  1.9G   0% /dev/shm
tmpfs           5.0M     0  5.0M   0% /run/lock
tmpfs           1.9G     0  1.9G   0% /sys/fs/cgroup
/dev/vda2       189M  6.1M  182M   4% /boot/efi
tmpfs           376M     0  376M   0% /run/user/0
</div>
            </div>
            
            <div class="test-item">
                <strong>network_interfaces:</strong>
                <div class="command">$ ip addr show 2>/dev/null || ifconfig</div>
                <div class="output">1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
    inet6 ::1/128 scope host 
       valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether 00:16:3e:4b:72:b1 brd ff:ff:ff:ff:ff:ff
    inet 172.24.140.79/20 metric 100...</div>
            </div>
            
            <div class="test-item">
                <strong>running_processes:</strong>
                <div class="command">$ ps aux | head -20</div>
                <div class="output">USER         PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root           1  0.4  0.3 168804 12280 ?        Ss   00:31   0:02 /sbin/init noibrs
root           2  0.0  0.0      0     0 ?        S    00:31   0:00 [kthreadd]
root           3  0.0  0.0      0     0 ?        I<   00:31   0:00 [rcu_gp]
root           4  0.0  0.0      0     0 ?        I<   00:31   0:00 [rcu_par_gp]
root           6  0.0  0.0      0     0 ?        I<   00:31   0:00 [kworker/0:0H-kblockd]
root           8...</div>
            </div>
            
            <div class="test-item">
                <strong>network_connections:</strong>
                <div class="command">$ netstat -tulpn 2>/dev/null || ss -tulpn</div>
                <div class="output">Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
tcp        0      0 127.0.0.53:53           0.0.0.0:*               LISTEN      441/systemd-resolve 
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      715/sshd: /usr/sbin 
tcp6       0      0 :::22                   :::*                    LISTEN      715/sshd: /usr/sbin 
udp        0      0 127.0.0.53:53           0.0.0.0:*...</div>
            </div>
            
            <div class="test-item">
                <strong>users:</strong>
                <div class="command">$ cat /etc/passwd | grep -E '/bin/(bash|sh)$'</div>
                <div class="output">root:x:0:0:root:/root:/bin/bash
</div>
            </div>
            
            <div class="test-item">
                <strong>sudo_users:</strong>
                <div class="command">$ getent group sudo 2>/dev/null || getent group wheel 2>/dev/null</div>
                <div class="output">sudo:x:27:
</div>
            </div>
            
            <div class="test-item">
                <strong>current_user:</strong>
                <div class="command">$ whoami && id</div>
                <div class="output">root
uid=0(root) gid=0(root) groups=0(root)
</div>
            </div>
            
            <div class="test-item">
                <strong>environment:</strong>
                <div class="command">$ env | grep -E '(PATH|HOME|USER|SHELL)'</div>
                <div class="output">SHELL=/bin/bash
HOME=/root
USER=root
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
</div>
            </div>
            
            <div class="test-item">
                <strong>uptime:</strong>
                <div class="command">$ uptime</div>
                <div class="output"> 00:39:13 up 7 min,  0 users,  load average: 0.00, 0.04, 0.02
</div>
            </div>
            
            <div class="test-item">
                <strong>last_logins:</strong>
                <div class="command">$ last | head -10</div>
                <div class="output">reboot   system boot  5.4.0-216-generi Mon Oct 13 00:31   still running

wtmp begins Wed Jun 25 17:09:55 2025
</div>
            </div>
            
            <div class="test-item">
                <strong>crontab_list:</strong>
                <div class="command">$ crontab -l 2>/dev/null || echo 'No crontab'</div>
                <div class="output">No crontab
</div>
            </div>
            
            <div class="test-item">
                <strong>systemd_services:</strong>
                <div class="command">$ systemctl list-units --type=service --state=running 2>/dev/null | head -20</div>
                <div class="output">  UNIT                        LOAD   ACTIVE SUB     DESCRIPTION                                 
  accounts-daemon.service     loaded active running Accounts Service                            
  aegis.service               loaded active running Aegis Service                               
  aliyun.service              loaded active running Aliyun Assist                               
  AssistDaemon.service        loaded active running AssistDaemon                                
  atd.service  ...</div>
            </div>
            
            </div>
            
            <div class="section">
                <h2>🚪 权限维持后门</h2>
                
            <div class="test-item ">
                <strong>SSH密钥后门:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 在~/.ssh/authorized_keys中添加后门密钥</p>
                <p>时间: 2025-10-13T00:39:46.707107</p>
            </div>
            
            <div class="test-item ">
                <strong>Cron定时任务后门:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 每10分钟执行一次隐蔽检查脚本</p>
                <p>时间: 2025-10-13T00:39:47.290218</p>
            </div>
            
            <div class="test-item ">
                <strong>系统服务后门:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 创建system-maintenance.service服务</p>
                <p>时间: 2025-10-13T00:39:48.011663</p>
            </div>
            
            <div class="test-item ">
                <strong>环境变量后门:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 在.bashrc中添加环境变量后门</p>
                <p>时间: 2025-10-13T00:39:48.556381</p>
            </div>
            
            <div class="test-item ">
                <strong>隐藏文件后门:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 创建隐藏的系统更新脚本</p>
                <p>时间: 2025-10-13T00:39:49.026592</p>
            </div>
            
            </div>
            
            <div class="section">
                <h2>🛡️ EDR规避测试</h2>
                
            <div class="test-item ">
                <strong>进程隐藏测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 创建并检测隐藏进程</p>
            </div>
            
            <div class="test-item ">
                <strong>文件完整性监控规避:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 修改文件后恢复时间戳</p>
            </div>
            
            <div class="test-item ">
                <strong>网络流量混淆测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 测试网络连接和流量特征</p>
            </div>
            
            </div>
            
            <div class="section">
                <h2>📤 数据渗透测试</h2>
                
            <div class="test-item ">
                <strong>敏感文件收集:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 搜索配置文件、密钥文件和日志文件</p>
            </div>
            
            <div class="test-item ">
                <strong>数据编码测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 测试Base64、Gzip压缩、十六进制编码</p>
            </div>
            
            <div class="test-item ">
                <strong>分块传输测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 创建大文件并分割为小块进行传输模拟</p>
            </div>
            
            </div>
            
            <div class="section">
                <h2>🤫 隐蔽通信测试</h2>
                
            <div class="test-item ">
                <strong>DNS隧道测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 测试DNS查询和数据编码传输</p>
            </div>
            
            <div class="test-item ">
                <strong>ICMP隧道测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 测试ICMP数据包和载荷传输</p>
            </div>
            
            <div class="test-item ">
                <strong>HTTP隐蔽通道测试:</strong>
                <span class="status success">成功</span>
                <p>详细信息: 测试HTTP头部、User-Agent和POST数据隐蔽传输</p>
            </div>
            
            </div>
            
            <div class="section">
                <h2>📋 测试证据</h2>
                
            <div class="test-item">
                <strong>current_time:</strong>
                <div class="command">$ date</div>
                <div class="output">Mon 13 Oct 2025 12:40:18 AM CST
</div>
            </div>
            
            <div class="test-item">
                <strong>system_uptime:</strong>
                <div class="command">$ uptime</div>
                <div class="output"> 00:40:18 up 8 min,  0 users,  load average: 0.09, 0.07, 0.03
</div>
            </div>
            
            <div class="test-item">
                <strong>logged_users:</strong>
                <div class="command">$ who</div>
                <div class="output"></div>
            </div>
            
            <div class="test-item">
                <strong>recent_commands:</strong>
                <div class="command">$ history | tail -20</div>
                <div class="output"></div>
            </div>
            
            <div class="test-item">
                <strong>network_status:</strong>
                <div class="command">$ netstat -tulpn | head -10</div>
                <div class="output">Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
tcp        0      0 127.0.0.53:53           0.0.0.0:*               LISTEN      441/systemd-resolve 
tcp        0      0 0.0.0.0:22              0.0.0.0:*  ...</div>
            </div>
            
            <div class="test-item">
                <strong>running_services:</strong>
                <div class="command">$ systemctl list-units --type=service --state=running | head -10</div>
                <div class="output">  UNIT                        LOAD   ACTIVE SUB     DESCRIPTION                                 
  accounts-daemon.service     loaded active running Accounts Service                            
  aegis.service               loaded active running Aegis Service                               
  aliyun....</div>
            </div>
            
            <div class="test-item">
                <strong>file_system_usage:</strong>
                <div class="command">$ df -h</div>
                <div class="output">Filesystem      Size  Used Avail Use% Mounted on
udev            1.9G     0  1.9G   0% /dev
tmpfs           376M  712K  376M   1% /run
/dev/vda3        40G  3.0G   35G   8% /
tmpfs           1.9G     0  1.9G   0% /dev/shm
tmpfs           5.0M     0  5.0M   0% /run/lock
tmpfs           1.9G     0  1....</div>
            </div>
            
            <div class="test-item">
                <strong>memory_usage:</strong>
                <div class="command">$ free -h</div>
                <div class="output">              total        used        free      shared  buff/cache   available
Mem:          3.7Gi       126Mi       2.8Gi       2.0Mi       728Mi       3.3Gi
Swap:            0B          0B          0B
</div>
            </div>
            
            <div class="test-item">
                <strong>process_tree:</strong>
                <div class="command">$ pstree | head -20</div>
                <div class="output">systemd-+-AliYunDun---11*[{AliYunDun}]
        |-AliYunDunMonito---28*[{AliYunDunMonito}]
        |-AliYunDunUpdate---6*[{AliYunDunUpdate}]
        |-accounts-daemon---2*[{accounts-daemon}]
        |-2*[agetty]
        |-aliyun-service---7*[{aliyun-service}]
        |-assist_daemon---7*[{assist_daem...</div>
            </div>
            
            <div class="test-item">
                <strong>environment_vars:</strong>
                <div class="command">$ env | grep -E '(PATH|HOME|USER)'</div>
                <div class="output">HOME=/root
USER=root
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
</div>
            </div>
            
            </div>
        </div>
    </div>
</body>
</html>
